directory-connector
directory-connector copied to clipboard
Published
20 hours ago •
bitwarden
bitwarden
[deps]: Update ldapts to v8
trafficstars
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| ldapts | 7.4.0 -> 8.0.1 |
Release Notes
ldapts/ldapts (ldapts)
v8.0.1
Bug Fixes
v8.0.0
Bug Fixes
BREAKING CHANGES
- Drop support for Node.js v18. Minimum required version is now Node.js v20.
- Updated engines field in package.json
- Updated CI configuration to test on supported versions only
- Run CI jobs for PRs targeting main
Configuration
📅 Schedule: Branch creation - "every 2nd week starting on the 2 week of the year before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "Published by a pub.dev verified publisher"){kind=small}
Internal tracking:
- ID: PM-22064
- Link: https://bitwarden.atlassian.net/browse/PM-22064
Codecov Report
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 7.72%. Comparing base (
32e3327) to head (8e4359d). Report is 9 commits behind head on main.
:white_check_mark: All tests successful. No failed tests found.
Additional details and impacted files
@@ Coverage Diff @@
## main #788 +/- ##
=====================================
Coverage 7.72% 7.72%
=====================================
Files 68 68
Lines 2757 2757
Branches 475 475
=====================================
Hits 213 213
Misses 2529 2529
Partials 15 15
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
:rocket: New features to boost your workflow:
- :package: JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
Quality Gate passed
Issues
0 New issues
0 Accepted issues
Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code
See analysis details on SonarQube Cloud
![sonarqubecloud[bot] avatar](https://avatars.githubusercontent.com/in/12526?v=4 "Published by a pub.dev verified publisher"){kind=small}
Checkmarx One – Scan Summary & Details – 15c22ca6-7a02-4952-b96c-6c9f45db4c27
New Issues (21)
Checkmarx found the following issues in this Pull Request
| Severity | Issue | Source File / Package | Checkmarx Insight |
|---|---|---|---|
 |
CVE-2025-3069 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.6Description: Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a ... Attack Vector: NETWORK Attack Complexity: LOW ID: g1wuQcxL1kx3jhpZmIS4vJQAeLicW0vbSTnqqUoKikQ%3D |
|
CVE-2025-4052 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.5Description: Inappropriate implementation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specif... Attack Vector: NETWORK Attack Complexity: LOW ID: Qo8kXXY8CgYANyajNdNp0Yjp5HC8zQ3VGiOC%2F34pBpY%3D |
 |
CVE-2025-0451 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.2Description: Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in ... Attack Vector: NETWORK Attack Complexity: LOW ID: HXbSW4ENi2wFWn109bLZaMDR3XZqLwvTxQOhdVu8qYE%3D |
|
CVE-2025-0995 | Npm-electron-34.1.1 | detailsRecommended version: 34.3.3Description: Use After Free in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML pa... Attack Vector: NETWORK Attack Complexity: LOW ID: UAUuBF7Ph9rJL6QjAL46nM%2F45gRS2TE7z66bn17yPkc%3D |
|
CVE-2025-0999 | Npm-electron-34.1.1 | detailsRecommended version: 34.3.3Description: Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially exploit heap corruption via a crafted ... Attack Vector: NETWORK Attack Complexity: LOW ID: idfaJQIiHqjuJ%2BH%2FLbHXNCYRUpJpaqmAT3dhRA5A%2BvI%3D |
|
CVE-2025-1914 | Npm-electron-34.1.1 | detailsRecommended version: 34.3.4Description: An out-of-bounds read in V8 in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to perform out-of-bounds memory access via a crafted ... Attack Vector: NETWORK Attack Complexity: LOW ID: StRmVDVTU6n0Tkqp0RY5uHn0%2FqiUt7fZDjYtKKvuvsg%3D |
|
CVE-2025-1915 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who ... Attack Vector: NETWORK Attack Complexity: LOW ID: LcjUPxwEYH%2FyAmqKH%2F1ROSoaurFJftKxhAH5PNzJKq8%3D |
|
CVE-2025-1919 | Npm-electron-34.1.1 | detailsRecommended version: 34.3.4Description: An out-of-bounds read in Media in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to potentially perform out-of-bounds memory access... Attack Vector: NETWORK Attack Complexity: LOW ID: 9u0a%2FcaeYOuqLBMn%2BooqDDcAd0dD13FmvZD7hLBMaRQ%3D |
|
CVE-2025-2135 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML pa... Attack Vector: NETWORK Attack Complexity: LOW ID: yV0q38idPkOn9vKvovhkkmG5JrXaJza51FAwKhR6z14%3D |
|
CVE-2025-2136 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.1Description: Use After Free in Inspector in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted ... Attack Vector: NETWORK Attack Complexity: LOW ID: NhL78pGHeekAwrhrxTG7CAN894qoUtmhOlkSqdu3P%2F4%3D |
|
CVE-2025-2137 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Out-of-bounds read in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to perform out-of-bounds memory access via a crafted HTM... Attack Vector: NETWORK Attack Complexity: LOW ID: kZmn8EeR%2FPyZnuSzuxFxqTOd0Bz6fniGUm465ZURYFY%3D |
|
CVE-2025-2476 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Use after free in Lens in Google Chrome prior to 134.0.6998.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML... Attack Vector: NETWORK Attack Complexity: LOW ID: qFvpy%2BWVUOdQPBQClaPaQpBpouDX2LToVczF63PG%2BCM%3D |
|
CVE-2025-4050 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.6Description: Out-of-bounds memory access in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specifi... Attack Vector: NETWORK Attack Complexity: LOW ID: thsebSj%2FNYhN%2BQ3FZVfJXYMgpma%2B1S4A%2BJSX2VF4bfo%3D |
|
CVE-2025-5063 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Use After Free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafte... Attack Vector: NETWORK Attack Complexity: LOW ID: bzMM%2B9hV16u66WAXu3Vpl5%2BW%2F3VC1PkOkYflOv6Tp0w%3D |
 |
CVE-2025-0444 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.1Description: Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML ... Attack Vector: NETWORK Attack Complexity: LOW ID: CJmph6lH%2F3TIv3ec82HF%2BswAmjtaKeqFThRmEH4YotU%3D |
|
CVE-2025-0445 | Npm-electron-34.1.1 | detailsRecommended version: 34.3.1Description: Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML pa... Attack Vector: NETWORK Attack Complexity: LOW ID: AhNLrA7IUWRkekYKf14HGkGAmWyb5ilbgcyGTKNUvIw%3D |
|
CVE-2025-0996 | Npm-electron-34.1.1 | detailsRecommended version: 34.3.3Description: Inappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of th... Attack Vector: NETWORK Attack Complexity: LOW ID: 8ctdFSsa%2FbRYaDqniOG7AtbPDe%2BrjgIdnI4Swhq8Lvg%3D |
|
CVE-2025-1923 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Inappropriate implementation in Permission Prompts in Google Chrome prior to 134.0.6998.35 allowed an attacker who convinced a user to install a ma... Attack Vector: NETWORK Attack Complexity: LOW ID: Nv9tnIwMOz4ZUQailyY8UCcJQXGjz%2F6jV2OLhqSqyiQ%3D |
|
CVE-2025-3070 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.8Description: Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege esc... Attack Vector: NETWORK Attack Complexity: LOW ID: Gs4wMmmFE99OcS27NhrWfoJVfb4xtC3PSSPUv0uvii0%3D |
|
CVE-2025-4664 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.7Description: Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafte... Attack Vector: NETWORK Attack Complexity: LOW ID: 5hhZPJoeEHZN5fIDytH5dE6KDq64KLPJKViUsfoFrdU%3D |
|
CVE-2025-5067 | Npm-electron-34.1.1 | detailsRecommended version: 34.5.8Description: Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HT... Attack Vector: NETWORK Attack Complexity: LOW ID: zISJXg8G5pXNAkihARr80skqx6A3hBI%2BYbTW6nQMXMc%3D |
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}